Urgent: Update Your Chrome Browser to Address New 0-Day Vulnerability

June 18, 2021

Google has released an important update for the Chrome browser on Windows, Mac, and Linux to resolve four security vulnerabilities, including a critical zero-day flaw currently being exploited. This issue, identified as CVE-2021-30554, is a high-severity “use after free” vulnerability in WebGL (Web Graphics Library), which is a JavaScript API used for rendering interactive 2D and 3D graphics in the browser. Exploiting this flaw could lead to data corruption, crashes, and unauthorized execution of code or commands. Google received an anonymous report about the vulnerability on June 15, and Chrome technical program manager Srinivas Sista confirmed that the company is “aware that an exploit for CVE-2021-30554 exists in the wild.” While it’s standard practice to withhold specific details until most users have applied the fix, this announcement comes just days after Google addressed another zero-day vulnerability.

Update Your Chrome Browser to Address Critical 0-Day Vulnerability

On June 18, 2021, Google announced the release of a significant update for its Chrome browser, applicable to Windows, Mac, and Linux systems, aimed at rectifying multiple security vulnerabilities. This update specifically targets four identified flaws, one of which is a zero-day vulnerability actively being exploited in the wild. This critical issue, designated as CVE-2021-30554, relates to a high-severity “use after free” bug in the WebGL (Web Graphics Library). This JavaScript API is widely used for rendering dynamic 2D and 3D graphics in the browser.

Successful exploitation of this vulnerability could have dire consequences, including the potential corruption of legitimate data, unexpected application crashes, and even the execution of unauthorized code or commands. It was reported to Google anonymously on June 15, and Srinivas Sista, a technical program manager for Chrome, confirmed that the company is aware of existing exploits associated with CVE-2021-30554. While it is customary for companies to withhold details regarding vulnerabilities until a majority of users are protected by the update, this incident follows closely on the heels of another zero-day vulnerability that was previously addressed less than ten days prior.

This current threat highlights significant risks for users and organizations utilizing the Chrome browser, particularly in the United States, where many businesses rely on this platform for critical operations. The timing of these updates is indicative of an increasing trend in cyber threats, underscoring the necessity for businesses to remain vigilant and proactive in managing their cybersecurity posture.

Within the context of the MITRE ATT&CK framework, various tactics and techniques may have been employed in the exploitation of this vulnerability. Initial access could have been achieved through common vectors utilized by adversaries, such as malicious web content that leverages the WebGL API. Following this, attackers could escalate privileges to execute unauthorized commands, ultimately compromising sensitive systems and data.

As these threats evolve, it remains crucial for business owners to stay informed about the latest vulnerabilities and the corresponding updates necessary to mitigate risks. Users are strongly advised to promptly update their Chrome browsers to ensure protection against existing exploits. Maintaining an updated browser not only safeguards the integrity of business operations but also contributes to the broader goal of cyberspace security.

In conclusion, Google’s swift response to this critical security issue serves as a reminder of the vulnerabilities that persist in the digital landscape. Organizations must prioritize robust cybersecurity measures and remain informed about emerging threats to effectively safeguard their assets against malicious actors.

Source link

Related Posts

NVIDIA Jetson Chipsets Vulnerable to Critical Security Flaws

On June 22, 2021, U.S. graphics chip manufacturer NVIDIA issued software updates to patch 26 vulnerabilities in its Jetson system-on-module (SOM) lineup. These flaws could allow attackers to escalate privileges and potentially cause denial-of-service or information disclosure issues. Ranging from CVE‑2021‑34372 to CVE‑2021‑34397, the vulnerabilities impact several Jetson products, including the TX1, TX2 series, TX2 NX, AGX Xavier series, Xavier NX, and Nano, as well as the Nano 2GB, all running Jetson Linux versions prior to 32.5.1. The issues were reported by Frédéric Perriot of Apple Media Products. NVIDIA’s Jetson line is designed for AI and computer vision applications, catering primarily to autonomous systems and mobile robots. A major concern is CVE‑2021‑34372, a buffer overflow vulnerability in the Trusty trusted execution environment (TEE) with a CVSS score of 8.2.

Critical Authentication Bypass Vulnerability Discovered in VMware Carbon Black App Control

June 24, 2021
VMware has released security updates addressing a significant vulnerability in Carbon Black App Control that could allow attackers to bypass authentication and potentially take control of affected systems. Labeled CVE-2021-21998, this flaw has received a severity score of 9.4 out of 10 according to the Common Vulnerability Scoring System (CVSS). It impacts App Control versions 8.0.x, 8.1.x, 8.5.x, and 8.6.x. Carbon Black App Control serves as a security measure to protect critical systems and servers from unauthorized changes amidst cyber threats while ensuring compliance with regulations like PCI-DSS, HIPAA, GDPR, SOX, FISMA, and NERC. “An attacker with network access to the VMware Carbon Black App Control management server may gain administrative access without needing authentication,” the California-based cloud computing and virtualization company stated in a recent advisory.

Microsoft Edge Vulnerability Could Have Allowed Hackers to Access Your Data on Any Website

On June 28, 2021, Microsoft released updates for the Edge browser addressing two security flaws, one of which involves a critical security bypass vulnerability. This flaw could potentially allow hackers to inject and execute arbitrary code across all websites. Identified as CVE-2021-34506 (CVSS score: 5.4), the issue is rooted in a universal cross-site scripting (UXSS) vulnerability that occurs when the browser’s automatic translation feature, powered by Microsoft Translator, is used. The vulnerability was discovered and reported by Ignacio Laurence along with Vansh Devgan and Shivam Kumar Singh from CyberXplore Private Limited. CyberXplore researchers explained, “Unlike conventional XSS attacks, UXSS exploits client-side vulnerabilities in the browser or extensions to create an XSS condition and run malicious code.”

Researchers Release PoC Exploit for Critical Windows RCE Vulnerability

On June 30, 2021, a proof-of-concept (PoC) exploit for a remote code execution vulnerability in the Windows Print Spooler, identified as CVE-2021-1675, was temporarily posted online before being removed. This security flaw, which Microsoft addressed in a Patch Tuesday update on June 8, 2021, could allow remote attackers to gain complete control over affected systems. The Print Spooler component, responsible for managing printer operations and loading drivers, poses significant risks due to its wide attack surface and high privilege level that enables the dynamic loading of third-party binaries. Shortly after the initial patch, Microsoft updated its assessment of the vulnerability’s impact from an elevation of privilege to remote code execution (RCE) and increased the severity rating.